open relay is closed but yet i'm being used to relay spam

One of the newsletters I receive regularly warned recently of a new attack
on Exchange servers. The bad guys bombard the server with SMTP AUTH
requests trying to crack Administrator password. Once armed with that, they
can obviously pretty much do as they please.